The Legion of the Bouncy Castle

Resources

Commercial support details and some general Java cryptography resources, which you may, or may not, find helpful. If you have an article, book, or project you would like to see added below send a message to feedback-crypto@bouncycastle.org

EJBCA
EJBCA is a fully functional Certificate Authority using J2EE technology. EJBCA builds on the J2EE platform to create a robust, high performance, platform independent, flexible, and component based CA to be used standalone or integrated in any J2EE app.

Novosec Extensions
This package provides the following pure Java extensions to the Bouncy Castle framework and has been made freely available by www.novosec.com:

OCSP (RFC 2560) server and client

CMP (RFC 2510, RFC 2511) generator and parser.

JCE taglib
A JSP tag library with cryptographic funtions and X.509 certificate generation
based on BouncyCastle JCE. There is also a refactoring of JCE taglib CryptoLib on the main JCE taglib project page. CryptoLib can also be used with non-JSP projects.

Jasypt - Java Simplified Encryption
Jasypt is a java library which allows the developer to add basic encryption capabilities to his/her projects with minimum effort. It offers transparent integration with Hibernate, an open API for use with any JCE provider, and is suitable for integration into Spring-based applications and ACEGI.
Instructions on using it with Bouncy Castle can be found at:
http://www.jasypt.org/bouncy-castle.html.

KeyTool IUI
KeyTool is a free user friendly GUI application for creating, managing keys and keystores as an alternative to the JDK's KeyTool command.

SimpleAuthority
A basic free Certification Authority. Can be used to generate keys for Secure email, VPN access and client/server SSL authentication.

Footprint
A set of tools for generating signed PDF documents, as well as certificates.

If you are reporting a bug, or would simply like to suggest something to add to the library let us know at feedback-crypto@bouncycastle.org and your request will be dealt with, if you need something else read on.

The Legion of the Bouncy Castle is a strictly non-profit, no financial interest organisation, however we do get requests for commercial support or project work from time to time. To deal with this and help fund further work on the APIs we have set up Crypto Workshop If you need a support agreement or have an issue that might need a solution requiring consulting, mentoring, or education, please contact us info@cryptoworkshop.com

English

Written by two founders of the Bouncy Castle project, the book will cover the recent features introduced in the JCA/JCE as well the latest changes to the BC APIs and the BCFIPS Java module. Currently just listed, but we hope to release the initial version of the book in mid-December.

The following are books listed in association with amazon.com. Any proceeds received from this are used to support the running of this web site.

Written by a Bouncy Castle APIs committer, the book covers recent features introduced in the JCA/JCE cryptography APIs in JDK 1.5 and is fully up to date with the cryptography APIs in J2SE 5.01, including Elliptic Curve cryptography, as well as dealing with earlier versions of the JCE/JCA in earlier JDKs. The book also deals with provider installation, X.509 certificate generation, CRL generation, and the creation and processing of PKCS #10 certification requests using the JCA and the Bouncy Castle APIs, in addition it covers certificate validation and certificate path processing with both CRLs and OCSP. Finally, it also covers using PKCS #12, processing CMS and S/MIME messages using the BC APIs, SSL using the JSSE, and gives an introduction as to how to use the Bouncy Castle ASN.1 library.

Not so much a book about algorithms either, but a book about how to use them in a general sense. If you are looking at implementing a secure system, rather than just implementing basic cryptography this is a great book to read.

Considerably more academic than Bruce Schneier's book, really intended for people with a good background in mathematics and computer science. Very solid, covering
both algorithms and basic number theory. Chapters for this book are also available on the web at http://www.cacr.math.uwaterloo.ca/hac/ with some restrictions.

The X.509 Style Guide
Peter Gutmann's implementation notes for developers of X.509 certificates. Humourous as well as very useful, also contains references
to other introductory material covering PKI and cryptography.